summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* CVE-2020-25719 s4:kdc: Add KDC support for PAC_REQUESTER_SID PAC bufferJoseph Sutton2021-11-085-75/+185
* CVE-2020-25722 Ensure the structural objectclass cannot be changedAndrew Bartlett2021-11-085-34/+37
* CVE-2020-25721 auth: Fill in the new HAS_SAM_NAME_AND_SID valuesAndrew Bartlett2021-11-084-16/+8
* CVE-2020-25719 kdc: Avoid races and multiple DB lookups in s4u2self checkAndrew Bartlett2021-11-085-78/+52
* CVE-2020-25718 kdc: Return ERR_POLICY if RODC krbtgt account is invalidJoseph Sutton2021-11-084-12/+8
* CVE-2020-25718 kdc: Confirm the RODC was allowed to issue a particular ticketAndrew Bartlett2021-11-089-54/+187
* CVE-2020-25718 dsdb: Bring sid_helper.c into common code as rodc_helper.cAndrew Bartlett2021-11-085-12/+2
* CVE-2020-25718 s4-rpc_server: Add in debug messages into RODC processingAndrew Bartlett2021-11-081-1/+17
* CVE-2020-25718 s4-rpc_server: Explain why we use DSDB_SEARCH_SHOW_EXTENDED_DN...Andrew Bartlett2021-11-082-2/+10
* CVE-2020-25718 s4-rpc_server: Remove unused attributes in RODC checkAndrew Bartlett2021-11-082-4/+1
* CVE-2020-25718 s4-rpc_server: Provide wrapper samdb_confirm_rodc_allowed_to_r...Andrew Bartlett2021-11-083-48/+51
* CVE-2020-25718 s4-rpc_server: Confirm that the RODC has the UF_PARTIAL_SECRET...Andrew Bartlett2021-11-083-2/+25
* CVE-2020-25718 s4-rpc_server: Put msDS-KrbTgtLinkBL and UF_INTERDOMAIN_TRUST_...Andrew Bartlett2021-11-083-16/+27
* CVE-2020-25718 s4-rpc_server: Put RODC reveal/never reveal logic into a singl...Andrew Bartlett2021-11-083-61/+63
* CVE-2020-25718 s4-rpc_server: Obtain the user tokenGroups earlierAndrew Bartlett2021-11-082-28/+28
* CVE-2020-25718 s4-rpc_server: Change sid list functions to operate on a array...Andrew Bartlett2021-11-083-43/+67
* CVE-2020-25718 kdc: Remove unused samba_kdc_get_pac_blob()Andrew Bartlett2021-11-082-24/+0
* CVE-2020-25719 heimdal:kdc: Require authdata to be presentJoseph Sutton2021-11-082-12/+1
* CVE-2020-25719 s4:kdc: Add KDC support for PAC_ATTRIBUTES_INFO PAC bufferJoseph Sutton2021-11-089-43/+223
* CVE-2020-25719 s4:kdc: Check if the pac is valid before updating itAndreas Schneider2021-11-084-35/+32
* CVE-2020-25719 s4:kdc: Add samba_kdc_validate_pac_blob()Andreas Schneider2021-11-082-0/+61
* CVE-2020-25719 s4:kdc: Remove trailing spaces in pac-glue.cAndreas Schneider2021-11-081-3/+3
* CVE-2020-25719 mit_samba: Create the talloc context earlierAndreas Schneider2021-11-081-8/+12
* CVE-2020-25719 mit_samba: The samba_princ_needs_pac check should be on the se...Andreas Schneider2021-11-081-0/+12
* CVE-2020-25719 mit-samba: Rework PAC handling in kdb_samba_db_sign_auth_data()Andreas Schneider2021-11-082-29/+93
* CVE-2020-25719 mit-samba: Handle no DB entry in mit_samba_get_pac()Andreas Schneider2021-11-081-0/+4
* CVE-2020-25719 mit-samba: Add mit_samba_princ_needs_pac()Andreas Schneider2021-11-082-0/+10
* CVE-2020-25719 mit-samba: If we use client_princ, always lookup the db entryAndreas Schneider2021-11-081-6/+75
* CVE-2020-25719 mit-samba: Add ks_free_principal()Andreas Schneider2021-11-082-0/+54
* CVE-2020-25719 mit-samba: Make ks_get_principal() internally publicAndreas Schneider2021-11-082-4/+9
* CVE-2020-25722 pytest: Raise an error when adding a dynamic test that would o...Joseph Sutton2021-11-081-1/+4
* CVE-2020-25719 s4/torture: Expect additional PAC buffersJoseph Sutton2021-11-082-2/+61
* CVE-2020-25719 tests/krb5: Add tests for mismatched names with user-to-userJoseph Sutton2021-11-084-2/+120
* CVE-2020-25719 tests/krb5: Add test for user-to-user with no snameJoseph Sutton2021-11-083-11/+29
* CVE-2020-25719 tests/krb5: Add tests for requester SID PAC bufferJoseph Sutton2021-11-083-4/+256
* CVE-2020-25719 tests/krb5: Add tests for PAC-REQUEST padataJoseph Sutton2021-11-083-3/+256
* CVE-2020-25719 tests/krb5: Add tests for PAC attributes bufferJoseph Sutton2021-11-083-16/+308
* CVE-2020-25719 tests/krb5: Add expected parameters to cache key for obtaining...Joseph Sutton2021-11-081-2/+7
* CVE-2020-25719 tests/krb5: Add EXPECT_PAC environment variable to expect pac ...Joseph Sutton2021-11-082-24/+56
* CVE-2020-25719 tests/krb5: Add testing for PAC_TYPE_REQUESTER_SID PAC bufferJoseph Sutton2021-11-082-0/+22
* CVE-2020-25719 tests/krb5: Add testing for PAC_TYPE_ATTRIBUTES_INFO PAC bufferJoseph Sutton2021-11-082-1/+44
* CVE-2020-25719 tests/krb5: Add _modify_tgt() method for modifying already obt...Joseph Sutton2021-11-081-2/+60
* CVE-2020-25719 tests/krb5: Extend _get_tgt() method to allow more modificatio...Joseph Sutton2021-11-081-18/+37
* CVE-2020-25719 tests/krb5: tests/krb5: Adjust expected error code for S4U2Sel...Joseph Sutton2021-11-081-10/+22
* CVE-2020-25719 tests/krb5: Adjust expected error codes for user-to-user testsJoseph Sutton2021-11-081-1/+3
* CVE-2020-25719 tests/krb5: Adjust PAC tests to prepare for new PAC_ATTRIBUTES...Joseph Sutton2021-11-083-7/+5
* CVE-2020-25719 tests/krb5: Use correct credentials for user-to-user testsJoseph Sutton2021-11-083-7/+4
* CVE-2020-25719 tests/krb5: Return ticket from _tgs_req()Joseph Sutton2021-11-081-6/+12
* CVE-2020-25719 tests/krb5: Expect 'renew-till' element when renewing a TGTJoseph Sutton2021-11-081-2/+6
* CVE-2020-25719 tests/krb5: Don't expect a kvno for user-to-userJoseph Sutton2021-11-081-3/+13
View Lorry Controller Status